Previous Topic: How to Authenticate Users in Heterogeneous RADIUS Environments with Two User Directories

Next Topic: Define Agents for a Heterogeneous Two Directory Environment

How to Configure the System and Policy Domain

To configure the heterogeneous environment described above, which includes two user directories, you must:

  1. Configure the system:
    1. Define two RADIUS Agents, as described in Define Agents for a Heterogeneous, Two Directory Environment.
    2. Set up the user directories, as described in Set Up User Directories.
    3. Create two policy domains, as described in Create Two Policy Domains.
  2. Configure the policy domain:
    1. Define one realm. The realm binds a RADIUS Agent with a RADIUS authentication scheme.
    2. Define a rule that enables authenticated users to access the realm. Each rule binds a realm with an allow or deny access event.
    3. Define a response that provides the user profile to the NAS device and optionally, configures the characteristics of the session using response attributes.
    4. Create a policy that binds the rule with the response. This policy also binds the rule and response with the RADIUS user directory.

A diagram of these two policy domains is shown in the following graphic:


Copyright © 2010 CA. All rights reserved. Email CA about this topic